Avatar

Please consider registering
guest

sp_LogInOut Log In sp_Registration Register

Register | Lost password?
sp_Search Search
Advanced Search
Advanced Search

— Forum Scope —




— Match —





— Forum Options —





Minimum search word length is 3 characters - maximum search word length is 84 characters

sp_Search Search
Go to Bottom
No permission to create posts
sp_Feed Topic RSS sp_TopicIcon
Error Signature could not be VERIFIED on connect
November 26, 2020
13:07, EET
Avatar
Xavier
Member
Members
Forum Posts: 43
Member Since:
March 26, 2014
sp_UserOfflineSmall Offline
Go to Top
1sp_Permalink sp_Print

Hi,

Using SDK 4.4.0 for the Client and the Server on the same computer I recently had errors like this when connecting (impossible to connect without restarting):
com.prosysopc.ua.stack.common.ServiceResultException: Bad_UnexpectedError (code=0x80010000, description=”Bad_UnexpectedError (code=0x80010000, description=”com.prosysopc.ua.stack.common.ServiceResultException: Bad_SecurityChecksFailed (code=0x80130000, description=”Signature could not be VERIFIED”)”)”)
at com.prosysopc.ua.stack.transport.tcp.io.TcpConnection$b.run(SourceFile:540)

It’s strange because it happened one day and was reproductible several times even when deleting the PKI folder but today it’s not reproductible… I would like to know what should I do if it happens again to have immediatly the right logs for instance.

My ideas at the moment are:
– as it is related to signature, at the moment I was creating 2 certificates (2048 et 4096 size) but I will now only create the 2048,
– update to the 4.4.2 SDK,
– active TRACE level for the class ChunkAsymmDecryptVerifier

Do you know what could cause this issue or other things that I could already do?

Thanks

November 26, 2020
15:27, EET
Avatar
Bjarne Boström
Moderator
Moderators
Forum Posts: 1026
Member Since:
April 3, 2012
sp_UserOfflineSmall Offline
Go to Top
2sp_Permalink sp_Print

Hi,

Sounds odd. I would assume either it work or not, not like randomly break.

There is at least one edge case with security mode NONE and multiple certs combined with user auth, but I would assume that is not what is used in this case?

2k and 4k certs can apply to multiple security modes, so we would do multiple endpoints for the server. We have at least one such test for the server side.
Do you also set multiple certs for the client side as well?

Our own apps tend to just use a single 2k cert.

November 26, 2020
19:37, EET
Avatar
Xavier
Member
Members
Forum Posts: 43
Member Since:
March 26, 2014
sp_UserOfflineSmall Offline
Go to Top
3sp_Permalink sp_Print

We use user auth + SIGN communication. I have also 2k and 4k certs on the client side.

I’ll let you know if it’s reproduced in the future with more logs I hope 🙂

No permission to create posts
sp_Feed All RSS
Go to top
Forum Timezone: Europe/Helsinki

Most Users Ever Online: 1919

Currently Online:
18 Guest(s)

Currently Browsing this Page:
1 Guest(s)

Top Posters:

Heikki Tahvanainen: 402

hbrackel: 144

rocket science: 88

pramanj: 86

Francesco Zambon: 83

Ibrahim: 78

Sabari: 62

kapsl: 57

gjevremovic: 49

Xavier: 43

Member Stats:

Guest Posters: 0

Members: 735

Moderators: 7

Admins: 1

Forum Stats:

Groups: 3

Forums: 15

Topics: 1523

Posts: 6449

Newest Members:

rust, christamcdowall, redaahern07571, nigelbdhmp, travistimmons, AnnelCib, dalenegettinger, howardkennerley, Thomassnism, biancacraft16

Moderators: Jouni Aro: 1026, Pyry: 1, Petri: 0, Bjarne Boström: 1026, Jimmy Ni: 26, Matti Siponen: 346, Lusetti: 0

Administrators: admin: 1